Twenty Year Anniversary
Showing 1 - 16 of 16 RSS Feed

Files Date: 2016-09-09

GNU Transport Layer Security Library 3.4.15
Posted Sep 9, 2016
Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.

Changes: Various updates.
tags | protocol, library
MD5 | 4ea5b239bd8bf1b734dda02997b36459
Asterisk Project Security Advisory - AST-2016-007
Posted Sep 9, 2016
Authored by Joshua Colp | Site asterisk.org

Asterisk Project Security Advisory - The overlap dialing feature in chan_sip allows chan_sip to report to a device that the number that has been dialed is incomplete and more digits are required. If this functionality is used with a device that has performed username/password authentication RTP resources are leaked. This occurs because the code fails to release the old RTP resources before allocating new ones in this scenario. If all resources are used then RTP port exhaustion will occur and no RTP sessions are able to be set up.

tags | advisory
MD5 | a71c6e2e1707e12bb56ed82ed1a9cc50
Asterisk Project Security Advisory - AST-2016-006
Posted Sep 9, 2016
Authored by Mark Michelson | Site asterisk.org

Asterisk Project Security Advisory - Asterisk can be crashed remotely by sending an ACK to it from an endpoint username that Asterisk does not recognize. Most SIP request types result in an "artificial" endpoint being looked up, but ACKs bypass this lookup. The resulting NULL pointer results in a crash when attempting to determine if ACLs should be applied. This issue was introduced in the Asterisk 13.10 release and only affects that release.

tags | advisory
MD5 | 26c0c8d748f1c9752e605ab3456a75b8
WordPress 4.5.3 Cross Site Scripting
Posted Sep 9, 2016
Authored by Han Sahin

WordPress version 4.5.3 suffers from a cross site scripting vulnerability when an uploaded image filename has a malicious payload inserted.

tags | exploit, xss
MD5 | 0161ac0b585bf93aafacc9cd06d0582a
Tinycrypt.asm Training Ransomware Virus
Posted Sep 9, 2016
Authored by Mark Osborne

Tinycrypt.asm is a training ransomware virus that is fully configurable to your needs but it is designed to be very controllable. It was designed to be used with the PoShFoTo incident response toolkit.

tags | tool, encryption, virus
MD5 | a5016fbb0f4cdb133455314676ba8c4a
PHPHolidays CMS 3.00.50 Cross Site Scripting
Posted Sep 9, 2016
Authored by ZwX | Site vulnerability-lab.com

PHPHolidays CMS version 3.00.50 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | fa304f70e56c35884d5302d51db580d1
Samsung SystemUI fimg2d Null Pointer Dereference
Posted Sep 9, 2016
Authored by 0xr0ot

Samsung SystemUI fimg2d driver suffers from a null pointer dereference vulnerability.

tags | advisory
MD5 | 3f3daa4a2b0c85cfd59b6f59a89f4152
WordPress Cubed Theme 1.2 CSRF / File Upload
Posted Sep 9, 2016
Authored by howucan

WordPress Cubed theme version 1.2 suffers from cross site request forgery and remote file upload vulnerabilities.

tags | exploit, remote, vulnerability, file upload, csrf
MD5 | fa4196605f52b02f8cd82e5c9562d32e
Airmail 3.0.2 Cross Site Scripting
Posted Sep 9, 2016
Authored by redrain

Airmail versions 3.0.2 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3131cbaca933e301ddee453effcc9491
Ubuntu Security Notice USN-3074-1
Posted Sep 9, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3074-1 - It was discovered that File Roller incorrectly handled symlinks. If a user were tricked into extracting a specially-crafted archive, an attacker could delete files outside of the extraction directory.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2016-7162
MD5 | 2562b00ba409eff3296f311bfd37a898
Picosmos Shows 1.6.0 Stack Overflow
Posted Sep 9, 2016
Authored by ZwX | Site vulnerability-lab.com

Picosmos Shows version 1.6.0 suffers from a stack overflow vulnerability.

tags | exploit, overflow
MD5 | b0a2ec0e6bae3b8069ee1d0d92e0b821
WhatsApp DLL Hijacking
Posted Sep 9, 2016
Authored by Amir.ght

WhatsApp suffers from a DLL hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 51c6ac3593525fee9a3bda477a7d0693
HDWiKi 4.0.4 Cross Site Scripting
Posted Sep 9, 2016
Authored by indoushka

HDWiKi version 4.0.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 903b177c58cca1ecd66a6801e2d7d0b5
BugNET 1.6.315.0 Cross Site Scripting
Posted Sep 9, 2016
Authored by indoushka

BugNET version 1.6.315.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 563ff9f4db63820ca4846a8cd21f9f9b
WinSCP 5.9.1 DLL Hijacking
Posted Sep 9, 2016
Authored by Amir.ght

WinSCP version 5.9.1 suffers from a DLL hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 32f0181a15173a9ae62890038e489121
OoVoo 3.7.1 DLL Hijacking
Posted Sep 9, 2016
Authored by Amir.ght

OoVoo version 3.7.1 suffers from a DLL hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 6bb99a96fdea3c3161038663e113dd91
Page 1 of 1
Back1Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    7 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close